According to the user guide, yes. Have you looked at the following:
The controller can dynamically select an authentication server from a server group based on the user information sent by the client in an authentication request.
For example, an authentication request can include client or user information in one of the following formats:
l <domain>\<user>—forexample,corpnet.com\darwin
l <user>@<domain>—forexample,darwin@corpnet.com
l host/<pc-name>.<domain>—forexample,host/darwin-g.finance.corpnet.com(thisformatisusedwith802.1x machine authentication in Windows environments)
When you configure a server in a server group, you can optionally associate the server with one or more match rules. A match rule for a server can be one of the following:
l Theserverisselectediftheclient/userinformationcontainsaspecifiedstring.
l Theserverisselectediftheclient/userinformationbeginswithaspecifiedstring.
l Theserverisselectediftheclient/userinformationexactlymatchesaspecifiedstring.